CVE-2004-2304 Information

Description

Integer overflow in Trillian 0.74 and earlier and Trillian Pro 2.01 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary code via a directIM packet that triggers a heap-based buffer overflow.

Reference

http://lists.seifried.org/pipermail/security/2004-February/001869.html http://secunia.com/advisories/10973 http://security.e-matters.de/advisories/022004.html http://securitytracker.com/id?1009220 http://www.osvdb.org/4056 http://www.securityfocus.com/bid/9489 https://exchange.xforce.ibmcloud.com/vulnerabilities/15303